[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Wget-dev] wget2 | wget-1.20.1.tar.gz signed with expired key (#424)
From: |
Mike Gerdts |
Subject: |
[Wget-dev] wget2 | wget-1.20.1.tar.gz signed with expired key (#424) |
Date: |
Wed, 02 Jan 2019 17:10:06 +0000 |
New Issue was created.
Issue 424: https://gitlab.com/gnuwget/wget2/issues/424
Author: Mike Gerdts
Assignee:
I was rather surprised to see that the key used to sign a release on December
26 expired on July 12. Is it legit?
```
$ curl https://ftp.gnu.org/gnu/gnu-keyring.gpg | gpg --import
...
$ gpg --verify wget-1.20.1.tar.gz.sig
gpg: WARNING: using insecure memory!
gpg: please see http://www.gnupg.org/faq.html for more information
gpg: Signature made December 26, 2018 at 08:12:51 PM UTC using RSA key ID
A2670428
gpg: Good signature from "Tim Rühsen <address@hidden>"
gpg: Note: This key has expired!
Primary key fingerprint: 1CB2 7DBC 9861 4B2D 5841 646D 0830 2DB6 A267 0428
$ gpg --list-key A2670428
gpg: WARNING: using insecure memory!
gpg: please see http://www.gnupg.org/faq.html for more information
pub 4096R/A2670428 2014-06-26 [expired: 2018-06-12]
uid Tim Rühsen <address@hidden>
```
--
Reply to this email directly or view it on GitLab:
https://gitlab.com/gnuwget/wget2/issues/424
You're receiving this email because of your account on gitlab.com.
- [Wget-dev] wget2 | wget-1.20.1.tar.gz signed with expired key (#424),
Mike Gerdts <=